PHPNuke Category Parameter SQL Injection Vulnerability
Del.icio.us
Digg
Google
Spurl
Blink
Furl
Y! MyWeb
Share:
Sponsors:
Patch your search module modules/Search/index.php:
Find:
/* Category Selection */
under add:
$category = intval($category);
and change:
$categ = "AND catid=$category ";
to:
$categ = "AND catid='$category' ";
CZEnhanced 7.0 and the PHPNuke 7.0 available here for download have the patches applied.
Thanks Chatserv!
Article submitted by: Telli
Last Update: 02-20-2004
Category: PHP Nuke News
Find:
/* Category Selection */
under add:
$category = intval($category);
and change:
$categ = "AND catid=$category ";
to:
$categ = "AND catid='$category' ";
CZEnhanced 7.0 and the PHPNuke 7.0 available here for download have the patches applied.
Thanks Chatserv!
Article submitted by: Telli
Last Update: 02-20-2004
Category: PHP Nuke News
Current rating: 5.5 by 42 users
| Would you recommend this article to a friend? |
| Not a Chance | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | Absolutely |
Related News Stories
(8,882 reads) 08-30-2009
· Submit Your Php nuke modules, themes, news, Tips and blocks(7,000 reads) 04-13-2009
· Professional Nuke Installation/Repair Services(12,713 reads) 02-03-2009
· New PHP-Nuke Turkey Community Site(9,985 reads) 07-22-2008
· Nuke Install :: The Leading Professional Nuke Installers(17,797 reads) 08-20-2007
· Php Nuke 8.1 Patched(18,865 reads) 08-04-2007
· PHP-Nuke 8.1 Released(19,262 reads) 01-11-2007
· PNC 4.0 Release Date(14,757 reads) 01-11-2007
· Clan Themes BBToNuke Pack Released(15,696 reads) 09-21-2006
· Php Nuke 8.0 Released(14,576 reads) 07-18-2006
· PhpThemes.Net
Please register or sign-in to post comments.